Bleeping Computer

Malicious PyPi packages aim DDoS attacks at Counter-Strike servers

A dozen malicious Python packages were uploaded to the PyPi repository this weekend in a typosquatting attack that performs DDoS attacks on a Counter-Strike 1.6 server. Python Package Index (PyPi) is ...
GIGAZINE

Clearly that PyPI, which manages Python packages, has disclosed user data to the US Department of Justice

Software Foundation (PSF), which operates the Python Package Index (PyPI), a Python package upload platform, was issued three subpoenas from the U.S. Department of Justice in March and April 2023, ...
CSOonline

Malicious package flood on PyPI might be sign of new attacks to come

The PyPI package flood is just the latest in a string of attacks on public repositories with the intent to plant malicious code. Over the weekend an attacker has been uploading thousands of malicious ...